+ 



* 



1/11 



TARGET SERVICE § - 






SESSION SECURITY . 


O 

- CO 


re 


TRANSPORT 


< 




Ai 




• mam 




ON 

m 



2/11 



Alice Bob 
Choose a 0, . . . , r — 1 



(D a, 



9* 



oase 6 0 3 . . . , r — 1 



Compute k <- (^)° * Compute * <- (p°) 6 



Figure 2 



Alice Bob 

Choose a €^ 0, . . . , r — 1 



Create SlCg 

Verify 9IG C * vS/ 

Create ac^ 

_^ 

™ > ^ j Verify SIC* 



Figure 3 




3/11 



Alice Bob 

Choose suitable DH group G 
Choose a 0, . . . 3 r — 1 

Definition of G, g a 



Verify G is a valid DH group 
Choose 6 en 0, . . . 3 r — 1 
Create sig b 



Verify sig B v£ 
Create siG>t 

SIC,* 



k <- (tfy Verify siG>i 



Figure 4 



Alice Bob 

Choose suitable DH group G 
Choose a e^t Q, . . . 3 r — 1 

Definition of G 3 g a 



Verify G 5s a valid DH group 
Choose 6 €n 0 3 . . . 3 r — 1 
Choose justb; Create siGs 

g b 1 JUOTs 3 SIGb 



Verify justs; Verify SIG* 
Choose just>i; Create SiG>t 

®just>i 3 sjg a 
> 
« Verify JUST^; Verify sig a 

k<r-(g«f 



Figure 5 



4/11 

Alice Bob 

Choose suitable DH group G 
Choose a 0, ... 3 r — 1 

Definition of G 3 g a 



Verify G is a valid DH group 
Choose 6 €r 0, ... , r — 1 
Choose JUSTBi Create sjg s 

gf 6 , JUSTs, SPIb, SIGb ^ 

Verify JUST S ; Verify siGs 
Choose justx; Create siga 

® justa, spi>i, sig>i 
> 
»r-\y j Verify JUST^; Verify SiG^ 



Figure 6 



Alice Bob 

Choose ADVs and QEWx 
Choose suitable DH group G 
Choose a6R0j...,r-l 

Definition of G, g", 

®ADVs, QW>i 
> 
Verify G is a valid DH group 

Choose 6 0, . . . ,r — 1 
Choose JUSr fi and Adv^j 
Create sig b 

g\ JUSTs, ADV/i, SPIs, SIGh_ 

Verify just b ; Verify S3Gs 
Choose JUSTUS Create S1G4 

®JUST X , SFU, SG X 
> 
n. \y j Verify JUST^; Verify SiG^ 

* *- Of) 6 



Figure 7 



* 




5/11 



Alice Bob 

Choose advb and QRY>t 
Choose suitable DH group G 
Choose a e w 0,. . . 3 r — 1 
Choose est 

Definition of G 3 g° 3 CS £3 

ADVjs, QKY>i 



Verify G is a vaBd DH group 
Choose cs 6 csr 
Choose 6 e K ft - . - 3 r — 1 
Choose JUSTUS and adv^ 
Create sig* 

g 6 , CS, JUST B3 ADV>t 3 SFI* 3 
SIGs 

Verify cs e csr * 
Verify justs; Verify sig* 
Choose JUST^; Create sig>i 

®just^ 3 spu, SIG>i 
^ 
kt- w j Verify just>i; Verify SiG^ 



Figure 8 



6/11 



Alice Bob 

Choose ADVs and QK*a 
Choose smtable DH gromp G 
Choose og w 0,...,f-l 
Choose CS L 

Ddinitton of G t g a , cs Lt 



Verify G is a valid DH group 
Choose cs g cs^ 
Choose 6 0, . . . , r — 1 
Choose JU3T S and adv^ 
Create siGb 

g* t CS, JUSTjj, ADV^i, SPIs, 

Verify cs e cs £ ^R/ 
Verify Jusr s ; Verify sig s 
Choose justu; Create sig^ 

®justu 5 spu, SIG>i 
> 
n,x- V e, , Verify jusiu; Verify sig^ 

Store secure channel X; (g a ) 6 

information Store secrare channe] 

information 



Figure 9 



7/11 



* 



Client ID 
i 



LookUp ^41 



SP3 



t 



SPI 



rn 



rn 





State 




m/c 



44 



Figure 10 



,42 



MAC 



SPI 


c 


m 


MAC 




-40 



SPI 



LookUp Y 51 




c -» 



X 



53 



SPI 


c 


m 


MAC 



C-* 

54 



MACh-K^ 

✓ 




State 




55 






m/c 




rn 





Figure 11 



■50 



9/11 




« 4 

10/11 




4 



11/11 



Q 

ui 

Ui 

i-f] 

a 

is 

ill 
u 

Ci) 
c;) 




H co 



o 




CD 



m 

ON 



o 




ON 



o\ 



« (*J O ^ GO tQ OS 



